Package version:
OptionaladditionallyFor multi-tenant applications, specifies additional tenants for which the credential may acquire tokens. Add the wildcard value "*" to allow the credential to acquire tokens for any tenant the application is installed.
OptionalauthenticationResult of a previous authentication that can be used to retrieve the cached credentials of each individual account. This is necessary to provide in case the application wants to work with more than one account per Client ID and Tenant ID pair.
This record can be retrieved by calling to the credential's authenticate() method, as follows:
const authenticationRecord = await credential.authenticate();
OptionalauthorityThe authority host to use for authentication requests. Possible values are available through AzureAuthorityHosts. The default is "https://login.microsoftonline.com".
OptionalbrokerOptions to allow broker authentication when using InteractiveBrowserCredential
OptionalbrowserShared configuration options for browser customization
OptionalerrorFormat for error messages for display in browser
OptionalsuccessFormat for success messages for display in browser
OptionalclientThe Client ID of the Microsoft Entra application that users will sign into. It is recommended that developers register their applications and assign appropriate roles. For more information, visit https://aka.ms/identity/AppRegistrationAndRoleAssignment. If not specified, users will authenticate to an Azure development application, which is not recommended for production scenarios.
OptionaldisableMakes getToken throw if a manual authentication is necessary.
Developers will need to call to authenticate() to control when to manually authenticate.
OptionaldisableThe field determines whether instance discovery is performed when attempting to authenticate.
Setting this to true will completely disable both instance discovery and authority validation.
As a result, it's crucial to ensure that the configured authority host is valid and trustworthy.
This functionality is intended for use in scenarios where the metadata endpoint cannot be reached, such as in private clouds or Azure Stack.
The process of instance discovery entails retrieving authority metadata from https://login.microsoft.com/ to validate the authority.
OptionalloggingAllows users to configure settings for logging policy options, allow logging account information and personally identifiable information for customer support.
OptionalloginloginHint allows a user name to be pre-selected for interactive logins. Setting this option skips the account selection prompt and immediately attempts to login with the specified account.
OptionalredirectGets the redirect URI of the application. This should be same as the value
in the application registration portal. Defaults to window.location.href.
This field is no longer required for Node.js.
OptionaltenantThe Microsoft Entra tenant (directory) ID.
OptionaltokenOptions to provide to the persistence layer (if one is available) when storing credentials.
You must first register a persistence provider plugin. See the
@azure/identity-cache-persistence package on NPM.
Example:
import { useIdentityPlugin, DeviceCodeCredential } from "@azure/identity";
useIdentityPlugin(cachePersistencePlugin);
const credential = new DeviceCodeCredential({
tokenCachePersistenceOptions: {
enabled: true,
},
});
Defines the common options for the InteractiveBrowserCredential class.